aecw/ani-rss
1
0
Fork 0
mirror of https://github.com/wushuo894/ani-rss.git synced 2026-03-15 01:20:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
06a1c0d886ab85924efa9d6939df4b630851db19
ani-rss/ani-rss-application/src/main/java/ani/rss/action/LoginAction.java
wushuo 06a1c0d886 refactor: 拆分模块
2025-11-22 23:46:17 +08:00

81 lines
2.3 KiB
Java
Raw Blame History

package ani.rss.action;
import ani.rss.annotation.Auth;
import ani.rss.annotation.Path;
import ani.rss.commons.CacheUtil;
import ani.rss.entity.Config;
import ani.rss.entity.Login;
import ani.rss.util.AuthUtil;
import ani.rss.util.other.ConfigUtil;
import cn.hutool.core.lang.Assert;
import cn.hutool.core.thread.ThreadUtil;
import cn.hutool.core.util.RandomUtil;
import cn.hutool.http.server.HttpServerRequest;
import cn.hutool.http.server.HttpServerResponse;
import lombok.extern.slf4j.Slf4j;
import java.io.IOException;
import static ani.rss.util.AuthUtil.limitLoginAttempts;
/**
* 登录
*/
@Slf4j
@Auth(value = false)
@Path("/login")
public class LoginAction implements BaseAction {
@Override
public void doAction(HttpServerRequest request, HttpServerResponse response) throws IOException {
limitLoginAttempts(false);
Login myLogin = getBody(Login.class);
Config config = ConfigUtil.CONFIG;
Login login = config.getLogin();
String myUsername = myLogin.getUsername();
String myPassword = myLogin.getPassword();
Assert.notBlank(myUsername, "用户名不能为空");
Assert.notBlank(myPassword, "密码不能为空");
String username = login.getUsername();
String password = login.getPassword();
// 一个令牌只能用于一个ip
String ip = AuthUtil.getIp();
if (config.getVerifyLoginIp()) {
myLogin.setIp(ip);
} else {
myLogin.setIp("");
}
if (username.equals(myUsername) && password.equals(myPassword)) {
AuthUtil.resetKey();
clearLimitLoginAttempts();
log.info("登录成功 {} ip: {}", username, ip);
String s = AuthUtil.getAuth(myLogin);
resultSuccess(s);
return;
}
limitLoginAttempts(true);
log.warn("登陆失败 {} ip: {}", myUsername, ip);
ThreadUtil.sleep(RandomUtil.randomInt(500, 5000));
resultErrorMsg("用户名或密码错误");
}
/**
* 清除限制尝试次数
*/
public static void clearLimitLoginAttempts() {
String ip = AuthUtil.getIp();
String key = "LimitLoginAttempts#" + ip;
if (CacheUtil.containsKey(key)) {
CacheUtil.remove(key);
}
}
}
Reference in New Issue View Git Blame Copy Permalink